Installing and Configuring Wireshark on Kali Linux as a Newbie.

If you’re interested in network analysis and getting started in cybersecurity like i am (blue team ) then, Wireshark is a tool you must have in your arsenal. Wireshark is a free and open-source packet analyzer that allows you to capture and inspect network traffic in real-time. It’s an essential tool used by network administrators, security professionals, and developers to understand what’s happening on their networks.

In this blog post, i’ll go over the steps to install and configure Wireshark as a newbie(like myself).

Installing Wireshark

Wireshark is available for Windows, macOS, and Linux operating systems. You can download it from the official website: https://www.wireshark.org/download.html

Step 1: Update your Kali Linux system

Before you begin installing Wireshark, it is important to ensure that your Kali Linux system is up to date. You can do this by running the following command in the terminal:

sudo apt-get update && sudo apt-get upgrade

This will update your system to the latest version and ensure that any necessary dependencies are installed.

Step 2: Install Wireshark

Once your system is up to date, you can proceed with installing Wireshark. To install Wireshark on Kali Linux, run the following command in the terminal:

sudo apt-get install wireshark

This will download and install the latest version of Wireshark on your system.

Step 3: Configure Wireshark

After installing Wireshark, you need to configure it to work with non-root users. By default, Wireshark can only be run by the root user. This can be a security risk, so it is recommended to configure Wireshark to allow non-root users to run it.

To do this, run the following command in the terminal:

sudo dpkg-reconfigure wireshark-common

This will launch a configuration window where you can select “Yes” to allow non-root users to capture packets. Once you have made the selection, press “OK” to save the changes.

Step 4: Launch Wireshark

You can launch Wireshark by typing the following command in the terminal:

wireshark

This will launch Wireshark in the graphical user interface. From here, you can start capturing packets by selecting the interface you want to capture from and clicking the “Start” button.

Conclusion

Wireshark is an essential and interesting tool for anyone interested in network analysis. Installing and configuring Wireshark as a newbie is pretty straightforward. Once you’ve mastered the basics, you're good to start analyzing and capturing and analyzing network traffic on your computer.

You can also check out HackerSploit for great videos on wireshark.

Happy Practice!